CVE-2025-65592 | nopCommerce 4.90.0 Product Management Product Name/Short Description cross site scripting

Inserito da Angelo Barbosa | Dic 16, 2025 | CVE

A vulnerability was found in nopCommerce 4.90.0. It has been classified as problematic. The affected element is an unknown function of the component Product Management. Performing manipulation of the argument Product Name/Short Description results in cross site scripting.

This vulnerability is known as CVE-2025-65592. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-65592 | nopCommerce 4.90.0 Product Management Product Name/Short Description cross site scripting

Post correlati

CVE-2025-11410 | Campcodes Advanced Online Voting Management System 1.0 /admin/voters_add.php firstname sql injection

CVE-2025-7378 | ASUSTOR ADM up to 4.0 NAS Configuration File input validation

CVE-2024-23619 | IBM Merge Healthcare eFilm Workstation up to 4.1 hard-coded credentials

CVE-2025-5145 | Netcore POWER13 up to 20250508 Query String /www/cgi-bin/ command injection